AP reports: Aetna will pay $935,000 after one of its vendors sent letters to California patients that revealed via a window on the envelopes that the recipients were taking HIV-related medications, officials said Wednesday. The settlement resolves allegations that Aetna violated state health privacy laws, California Attorney General Xavier Becerra said. Nearly 2,000 Californians —…
Category: Subcontractor
Over 140 International Airlines Affected by Major Security Breach
Sergiu Gatlan reports: Potential attackers could view and change private information in flight bookings made by millions of customers of major international airlines because of a security issue in the Amadeus online booking system found by Safety Detective’s Noam Rotem. Currently, the Amadeus ticket booking system is being used by 141 international airlines which gives…
VA: Notice of Click2Gov-related Data Breach of Hanover County Online Payment System
From the county’s notice, which you can find in its entirety here: Hanover County was recently notified about potential unauthorized charges on credit cards used by customers to pay their utility bills via the website between August 1, 2018 and January 9, 2019. The County takes the security and protection of its customers’ confidential information…
PH: Updated claims: No passport data loss, breach
Roy Mabasa and PNA report: Foreign Affairs Secretary Teodoro Locsin Jr. on Tuesday backpedaled from his earlier allegations that French contractor Oberthur reportedly ran away with the data of millions of passport applicants when its contract was abruptly terminated by the Philippine government in 2013. “Data is not run-away-able but made inaccessible. Access denied,” Locsin…
PH: Locsin says ‘pissed’ contractor ‘took all’ passport data
Updated January 15: Locsin subsequently clarified his claim and said that no data had been removed or stolen, but had been made inaccessible. See this report. Original post: Katrina Domingo reports: MANILA – Some Filipinos renewing their passports may have to present their birth certificates as an additional requirement after a passport production contractor the…
How a Russian firm helped catch an alleged NSA data thief
Fascinating reporting by Kim Zetter on Politico. The 2016 arrest of a former National Security Agency contractor charged with a massive theft of classified data began with an unlikely source: a tip from a Russian cybersecurity firm that the U.S. government has called a threat to the country. Moscow-based Kaspersky Lab turned Harold T. Martin…